ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Error in 5.2.3.22

1999-07-21 14:44:36
from [Jon Callas] [Permanent Link]
In OpenPGP, any signature may be revoked. In addition, there is a special "key revocation" signature that can be used to render the whole key inactive.
5.2.3.22 says this subpacket is only valid for key and certification revocations. I think it's useful to be able to put a reason on *any* signature revocation, and that this is an omission.
For generic signatures, I can't think of a reason other than 0x00 (no reason specified) to be pertinent. But I think it should be allowed.
Another question: Should this subpacket be elevated to SHOULD-implement? I want to keep as few SHOULDs and MUSTs as possible, but think this is an important feature. This subpacket, properly done, allows for keys to be retired, user names retired, and comments to be put on revocations. These are all so useful, I'd like to encourage implementers to do it. 

        Jon
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Error in 5.2.3.22, Jon Callas <=
Previous by Date:  Preference Conformance, Jon Callas
Next by Date:  compression & interoperability (Re: OpenPGP conformance : MUSTS found in RFC2440), Adam Back
Previous by Thread:  Preference Conformance, Jon Callas
Next by Thread:  Buzzine Confirmation, buzzine-private-list
Indexes:  [Date] [Thread] [Top] [All Lists]